anoopmb
/
frappe
1
0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
10945 Revīzijas
1 Atzars
314 MiB
 
 
 
 
 
 
Koks: 6b3bf22462
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '6b3bf22462'
${ noResults }
frappe/frappe/utils/user.py

311 rindas
8.9 KiB
Neapstrādāts Vainot Vēsture 

  1. # Copyright (c) 2015, Frappe Technologies Pvt. Ltd. and Contributors

  2. # MIT License. See license.txt

  3. 

  4. from __future__ import unicode_literals

  5. 

  6. import frappe, json

  7. from frappe import _dict

  8. import frappe.share

  9. 

  10. class UserPermissions:

  11. 	"""

  12. 	A user permission object can be accessed as `frappe.get_user()`

  13. 	"""

  14. 	def __init__(self, name=''):

  15. 		self.defaults = None

  16. 		self.name = name or frappe.session.get('user')

  17. 		self.roles = []

  18. 

  19. 		self.all_read = []

  20. 		self.can_create = []

  21. 		self.can_read = []

  22. 		self.can_write = []

  23. 		self.can_cancel = []

  24. 		self.can_delete = []

  25. 		self.can_search = []

  26. 		self.can_get_report = []

  27. 		self.can_import = []

  28. 		self.can_export = []

  29. 		self.can_print = []

  30. 		self.can_email = []

  31. 		self.can_set_user_permissions = []

  32. 		self.allow_modules = []

  33. 		self.in_create = []

  34. 		self.setup_user()

  35. 

  36. 	def setup_user(self):

  37. 		def get_user_doc():

  38. 			user = None

  39. 			try:

  40. 				user = frappe.get_doc("User", self.name).as_dict()

  41. 			except frappe.DoesNotExistError:

  42. 				pass

  43. 			except Exception, e:

  44. 				# install boo-boo

  45. 				if e.args[0] != 1146: raise

  46. 

  47. 			return user

  48. 

  49. 		if not frappe.flags.in_install_db and not frappe.flags.in_test:

  50. 			user_doc = frappe.cache().hget("user_doc", self.name, get_user_doc)

  51. 			if user_doc:

  52. 				self.doc = frappe.get_doc(user_doc)

  53. 

  54. 	def get_roles(self):

  55. 		"""get list of roles"""

  56. 		if not self.roles:

  57. 			self.roles = get_roles(self.name)

  58. 		return self.roles

  59. 

  60. 	def build_doctype_map(self):

  61. 		"""build map of special doctype properties"""

  62. 

  63. 		self.doctype_map = {}

  64. 		for r in frappe.db.sql("""select name, in_create, issingle, istable,

  65. 			read_only, module from tabDocType""", as_dict=1):

  66. 			self.doctype_map[r['name']] = r

  67. 

  68. 	def build_perm_map(self):

  69. 		"""build map of permissions at level 0"""

  70. 		self.perm_map = {}

  71. 		roles = self.get_roles()

  72. 		for r in frappe.db.sql("""select * from tabDocPerm where docstatus=0

  73. 			and ifnull(permlevel,0)=0

  74. 			and role in ({roles})""".format(roles=", ".join(["%s"]*len(roles))), tuple(roles), as_dict=1):

  75. 			dt = r['parent']

  76. 

  77. 			if not dt in  self.perm_map:

  78. 				self.perm_map[dt] = {}

  79. 

  80. 			for k in frappe.permissions.rights:

  81. 				if not self.perm_map[dt].get(k):

  82. 					self.perm_map[dt][k] = r.get(k)

  83. 

  84. 	def build_permissions(self):

  85. 		"""build lists of what the user can read / write / create

  86. 		quirks:

  87. 			read_only => Not in Search

  88. 			in_create => Not in create

  89. 		"""

  90. 		self.build_doctype_map()

  91. 		self.build_perm_map()

  92. 		user_shared = frappe.share.get_shared_doctypes()

  93. 

  94. 		for dt in self.doctype_map:

  95. 			dtp = self.doctype_map[dt]

  96. 			p = self.perm_map.get(dt, {})

  97. 

  98. 			if not p.get("read") and (dt in user_shared):

  99. 				p["read"] = 1

  100. 

  101. 			if not dtp.get('istable'):

  102. 				if p.get('create') and not dtp.get('issingle'):

  103. 					if dtp.get('in_create'):

  104. 						self.in_create.append(dt)

  105. 					else:

  106. 						self.can_create.append(dt)

  107. 				elif p.get('write'):

  108. 					self.can_write.append(dt)

  109. 				elif p.get('read'):

  110. 					if dtp.get('read_only'):

  111. 						self.all_read.append(dt)

  112. 					else:

  113. 						self.can_read.append(dt)

  114. 

  115. 			if p.get('cancel'):

  116. 				self.can_cancel.append(dt)

  117. 

  118. 			if p.get('delete'):

  119. 				self.can_delete.append(dt)

  120. 

  121. 			if (p.get('read') or p.get('write') or p.get('create')):

  122. 				if p.get('report'):

  123. 					self.can_get_report.append(dt)

  124. 				for key in ("import", "export", "print", "email", "set_user_permissions"):

  125. 					if p.get(key):

  126. 						getattr(self, "can_" + key).append(dt)

  127. 

  128. 				if not dtp.get('istable'):

  129. 					if not dtp.get('issingle') and not dtp.get('read_only'):

  130. 						self.can_search.append(dt)

  131. 					if not dtp.get('module') in self.allow_modules:

  132. 						self.allow_modules.append(dtp.get('module'))

  133. 

  134. 		self.can_write += self.can_create

  135. 		self.can_write += self.in_create

  136. 		self.can_read += self.can_write

  137. 

  138. 		self.shared = frappe.db.sql_list("""select distinct share_doctype from `tabDocShare`

  139. 			where `user`=%s and `read`=1""", self.name)

  140. 		self.can_read = list(set(self.can_read + self.shared))

  141. 

  142. 		self.all_read += self.can_read

  143. 

  144. 		if "System Manager" in self.roles:

  145. 			self.can_import = frappe.db.sql_list("""select name from `tabDocType`

  146. 				where allow_import = 1""")

  147. 

  148. 	def get_defaults(self):

  149. 		import frappe.defaults

  150. 		self.defaults = frappe.defaults.get_defaults(self.name)

  151. 		return self.defaults

  152. 

  153. 	# update recent documents

  154. 	def update_recent(self, dt, dn):

  155. 		rdl = frappe.cache().hget("user_recent", self.name) or []

  156. 		new_rd = [dt, dn]

  157. 

  158. 		# clear if exists

  159. 		for i in range(len(rdl)):

  160. 			rd = rdl[i]

  161. 			if rd==new_rd:

  162. 				del rdl[i]

  163. 				break

  164. 

  165. 		if len(rdl) > 19:

  166. 			rdl = rdl[:19]

  167. 

  168. 		rdl = [new_rd] + rdl

  169. 

  170. 		frappe.cache().hset("user_recent", self.name, rdl)

  171. 

  172. 	def _get(self, key):

  173. 		if not self.can_read:

  174. 			self.build_permissions()

  175. 		return getattr(self, key)

  176. 

  177. 	def get_can_read(self):

  178. 		"""return list of doctypes that the user can read"""

  179. 		if not self.can_read:

  180. 			self.build_permissions()

  181. 		return self.can_read

  182. 

  183. 	def load_user(self):

  184. 		d = frappe.db.sql("""select email, first_name, last_name,

  185. 			email_signature, user_type, language, background_image, background_style, mute_sounds

  186. 			from tabUser where name = %s""", (self.name,), as_dict=1)[0]

  187. 

  188. 		if not self.can_read:

  189. 			self.build_permissions()

  190. 

  191. 		d.name = self.name

  192. 		d.recent = json.dumps(frappe.cache().hget("user_recent", self.name) or [])

  193. 

  194. 		d.roles = self.get_roles()

  195. 		d.defaults = self.get_defaults()

  196. 

  197. 		for key in ("can_create", "can_write", "can_read", "can_cancel", "can_delete",

  198. 			"can_get_report", "allow_modules", "all_read", "can_search",

  199. 			"in_create", "can_export", "can_import", "can_print", "can_email",

  200. 			"can_set_user_permissions"):

  201. 

  202. 			d[key] = list(set(getattr(self, key)))

  203. 

  204. 		d.all_reports = self.get_all_reports()

  205. 		return d

  206. 

  207. 	def get_all_reports(self):

  208. 		reports =  frappe.db.sql("""select name, report_type, ref_doctype, disabled from tabReport

  209. 		    where ref_doctype in ('{0}')""".format("', '".join(self.can_get_report)), as_dict=1)

  210. 

  211. 		return frappe._dict((d.name, d) for d in reports)

  212. 

  213. def get_user_fullname(user):

  214. 	fullname = frappe.db.sql("SELECT CONCAT_WS(' ', first_name, last_name) FROM `tabUser` WHERE name=%s", (user,))

  215. 	return fullname and fullname[0][0] or ''

  216. 

  217. def get_fullname_and_avatar(user):

  218. 	first_name, last_name, avatar, name = frappe.db.get_value("User",

  219. 		user, ["first_name", "last_name", "user_image", "name"])

  220. 	return _dict({

  221. 		"fullname": " ".join(filter(None, [first_name, last_name])),

  222. 		"avatar": avatar,

  223. 		"name": name

  224. 	})

  225. 

  226. def get_system_managers(only_name=False):

  227. 	"""returns all system manager's user details"""

  228. 	import email.utils

  229. 	from frappe.core.doctype.user.user import STANDARD_USERS

  230. 	system_managers = frappe.db.sql("""select distinct name,

  231. 		concat_ws(" ", if(first_name="", null, first_name), if(last_name="", null, last_name))

  232. 		as fullname from tabUser p

  233. 		where docstatus < 2 and enabled = 1

  234. 		and name not in ({})

  235. 		and exists (select * from tabUserRole ur

  236. 			where ur.parent = p.name and ur.role="System Manager")""".format(", ".join(["%s"]*len(STANDARD_USERS))),

  237. 			STANDARD_USERS, as_dict=True)

  238. 

  239. 	if only_name:

  240. 		return [p.name for p in system_managers]

  241. 	else:

  242. 		return [email.utils.formataddr((p.fullname, p.name)) for p in system_managers]

  243. 

  244. def add_role(user, role):

  245. 	frappe.get_doc("User", user).add_roles(role)

  246. 

  247. def add_system_manager(email, first_name=None, last_name=None, send_welcome_email=False):

  248. 	# add user

  249. 	user = frappe.new_doc("User")

  250. 	user.update({

  251. 		"name": email,

  252. 		"email": email,

  253. 		"enabled": 1,

  254. 		"first_name": first_name or email,

  255. 		"last_name": last_name,

  256. 		"user_type": "System User",

  257. 		"send_welcome_email": 1 if send_welcome_email else 0

  258. 	})

  259. 	user.insert()

  260. 

  261. 	# add roles

  262. 	roles = frappe.db.sql_list("""select name from `tabRole`

  263. 		where name not in ("Administrator", "Guest", "All")""")

  264. 	user.add_roles(*roles)

  265. 

  266. def get_roles(user=None, with_standard=True):

  267. 	"""get roles of current user"""

  268. 	if not user:

  269. 		user = frappe.session.user

  270. 

  271. 	if user=='Guest':

  272. 		return ['Guest']

  273. 

  274. 	def get():

  275. 		return [r[0] for r in frappe.db.sql("""select role from tabUserRole

  276. 			where parent=%s and role not in ('All', 'Guest')""", (user,))] + ['All', 'Guest']

  277. 

  278. 	roles = frappe.cache().hget("roles", user, get)

  279. 

  280. 	# filter standard if required

  281. 	if not with_standard:

  282. 		roles = filter(lambda x: x not in ['All', 'Guest', 'Administrator'], roles)

  283. 

  284. 	return roles

  285. 

  286. def get_enabled_system_users():

  287. 	return frappe.db.sql("""select * from tabUser where

  288. 		user_type='System User' and enabled=1 and name not in ('Administrator', 'Guest')""", as_dict=1)

  289. 

  290. def is_website_user():

  291. 	return frappe.db.get_value('User', frappe.session.user, 'user_type') == "Website User"

  292. 

  293. def is_system_user(username):

  294. 	return frappe.db.get_value("User", {"name": username, "enabled": 1, "user_type": "System User"})

  295. 

  296. def get_users():

  297. 	from frappe.core.doctype.user.user import get_system_users

  298. 	users = []

  299. 	system_managers = frappe.utils.user.get_system_managers(only_name=True)

  300. 	for user in get_system_users():

  301. 		users.append({

  302. 			"full_name": frappe.utils.user.get_user_fullname(user),

  303. 			"email": user,

  304. 			"is_system_manager": 1 if (user in system_managers) else 0

  305. 		})

  306. 

  307. 	return users

  308. 

  309. def set_last_active_to_now(user):

  310. 	from frappe.utils import now_datetime

  311. 	frappe.db.set_value("User", user, "last_active", now_datetime())